The complete list of Infosec related cheat sheets

Discussion in 'Penetration Testing' started by InfosecShinobi, Feb 28, 2017.

  1. Penetration testing cheat sheets:
    mobile application pentesting: https://github.com/tanprathan/MobileApp-Pentest-Cheatsheet

    Penetration testing & exploit development https://imgur.com/Mr9pvq9

    Printer security testing http://hacking-printers.net/wiki/index.php/Printer_Security_Testing_Cheat_Sheet

    Nmap (Printable, 2013): https://pen-testing.sans.org/blog/2013/10/08/nmap-cheat-sheet-1-0/

    Nmap (Not printable, date unknown): https://hackertarget.com/nmap-cheatsheet-a-quick-reference-guide/

    Nmap 5(older version, not printable): https://nmapcookbook.blogspot.lu/2010/02/nmap-cheat-sheet.html

    Nmap 5 (older version, printable) http://www.cheat-sheets.org/saved-copy/Nmap5.cheatsheet.eng.v1.pdf

    cobalt strike beaconhttps://github.com/HarmJ0y/CheatSheets/blob/master/Beacon.pdf

    Java-Deserialization https://github.com/GrrrDog/Java-Deserialization-Cheat-Sheet

    Metasploit https://www.tunnelsup.com/metasploit-cheat-sheet/

    Another Metasploit: http://resources.infosecinstitute.com/metasploit-cheat-sheet/

    Powerupsql https://github.com/NetSPI/PowerUpSQL/wiki/PowerUpSQL-CheatSheet

    Scapy https://pen-testing.sans.org/blog/2016/04/05/scapy-cheat-sheet-from-sans-sec560#

    HTTP Status codes http://suso.suso.org/docs/infosheets/HTTP_status_codes.gif

    Beacon https://github.com/HarmJ0y/CheatSheets/blob/master/Beacon.pdf

    Powershellempire https://github.com/HarmJ0y/CheatSheets/blob/master/Empire.pdf

    Powersploit https://github.com/HarmJ0y/CheatSheets/blob/master/PowerSploit.pdf

    PowerUp https://github.com/HarmJ0y/CheatSheets/blob/master/PowerUp.pdf

    Powerview https://github.com/HarmJ0y/CheatSheets/blob/master/PowerView.pdf

    Vim https://people.csail.mit.edu/vgod/vim/vim-cheat-sheet-en.pdf

    Attack Surface Analysis

    XSS Filter Evasion

    REST Assessment

    Web Application Security Testing

    Android Testing

    IOS Developer

    Mobile Jailbreaking

    sql injectionhttps://www.veracode.com/security/sql-injection

    MYSQL SQL injection http://pentestmonkey.net/cheat-sheet/sql-injection/mysql-sql-injection-cheat-sheet

    _____________________________________________________________

    Forensics cheat sheets
    master boot record‍, guid partition table‍, NTFSvolume boot record‍, Master file table record‍, standard information attribute, $Attribute list attribute, $file name attribute, and more forensics‍ posters/cheat sheets: https://github.com/Invoke-IR/ForensicPosters

    Mounting DD Images https://sift.readthedocs.io/en/latest/cheatsheet/

    _____________________________________________________________

    CISO and webadmin cheat sheets
    CSP cheat sheet https://scotthelme.co.uk/csp-cheat-sheet/#require-sri-for (via Scott Helme‍)

    HTTP Status codes http://suso.suso.org/docs/infosheets/HTTP_status_codes.gif

    The windows logging Cheat Sheet https://www.malwarearchaeology.com/s/Windows-Logging-Cheat-Sheet_ver_Oct_2016.pdf

    The Windows Splunk Logging Cheat Sheet

    The Windows File Auditing Logging Cheat Sheet

    The Windows Registry Auditing Logging Cheat Sheet

    The Windows PowerShell Logging Cheat Sheet

    Curl HTTP https://bagder.github.io/curl-cheat-sheet/http-sheet.html

    Virtual Patching

    _____________________________________________________________

    Malware analysis and reverse engineering:
    Malware analysis: http://r00ted.com/cheat sheet reverse v5.png

    ADB: https://github.com/maldroid/adb_cheatsheet

    GDB vs windbg https://twitter.com/it4sec/status/828159963654668288/photo/1

    _____________________________________________________________

    Text editors
    VIM https://people.csail.mit.edu/vgod/vim/vim-cheat-sheet-en.pdf

    _____________________________________________________________

    Developers/Builders
    _____________________________________________________________

    Owasp cheat-sheets still in draft/Beta stages:

    Penetration test

    Thanks to the guys at Peerlyst for putting this list together : https://www.peerlyst.com/posts/the-complete-list-of-infosec-related-cheat-sheets-claus-cramon
     
    Forensicator likes this.

Share This Page